Test ID:	1.3.6.1.4.1.25623.1.0.801759
Category:	General
Title:	Ruby 'FileUtils.remove_entry_secure()' Method Race Condition Vulnerability
Summary:	Ruby is prone to race condition vulnerability.
Description:	Summary: Ruby is prone to race condition vulnerability. Vulnerability Insight: The flaw is due to a race condition within the 'FileUtils.remove_entry_secure' method, which can be exploited to delete arbitrary directories and files via symlink attacks. Vulnerability Impact: Successful exploitation allows attackers to execute arbitrary code with elevated privileges or cause a denial-of-service condition. Affected Software/OS: Ruby version 1.8.6 through 1.8.6 patchlevel 420 Ruby version 1.8.7 through 1.8.7 patchlevel 330 Ruby version 1.9.1 through 1.9.1 patchlevel 430 Ruby version 1.9.2 through 1.9.2 patchlevel 136 Ruby version 1.9.3dev, 1.8.8dev Solution: Upgrade to Ruby version 1.8.7-334 or 1.9.1-p431 or 1.9.2-p180 or later. CVSS Score: 6.3 CVSS Vector: AV:L/AC:M/Au:N/C:N/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2011-1004 43434 http://secunia.com/advisories/43434 43573 http://secunia.com/advisories/43573 46460 http://www.securityfocus.com/bid/46460 70958 http://osvdb.org/70958 ADV-2011-0539 http://www.vupen.com/english/advisories/2011/0539 APPLE-SA-2012-05-09-1 http://lists.apple.com/archives/security-announce/2012/May/msg00001.html FEDORA-2011-1876 http://lists.fedoraproject.org/pipermail/package-announce/2011-March/054422.html FEDORA-2011-1913 http://lists.fedoraproject.org/pipermail/package-announce/2011-March/054436.html MDVSA-2011:097 http://www.mandriva.com/security/advisories?name=MDVSA-2011:097 RHSA-2011:0909 http://www.redhat.com/support/errata/RHSA-2011-0909.html RHSA-2011:0910 http://www.redhat.com/support/errata/RHSA-2011-0910.html [oss-security] 20110221 CVE request: ruby: FileUtils is vulnerable to symlink race attacks + Exception methods can bypass $SAFE http://www.openwall.com/lists/oss-security/2011/02/21/2 [oss-security] 20110221 Re: CVE request: ruby: FileUtils is vulnerable to symlink race attacks + Exception methods can bypass $SAFE http://www.openwall.com/lists/oss-security/2011/02/21/5 http://support.apple.com/kb/HT5281 http://www.ruby-lang.org/en/news/2011/02/18/fileutils-is-vulnerable-to-symlink-race-attacks/ https://bugzilla.redhat.com/show_bug.cgi?id=678913
Copyright	Copyright (C) 2011 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.